(19) 




Europaisches 
Patentamt 

European 
Patent Office 

Office europeen 
des brevets 






(11) 



EP 1 806 683 A1 



(12) 



EUROPEAN PATENT APPLICATION 



/ A OX 

(43) 


Date of publication: 


(b\ ) Int CI.: 




11.07.2007 Bulletin 2007/28 


G06Q 10/00 (^o6.oi) 


/OH \ 

(21) 


Application number. 05111535.0 




(22) 


Date of filing: 30.1 1 .2005 




(84) 


Designated Contracting States: 


• Brown, Michael S 




AT BE BG CH CY CZ DE DK EE ES Fl FR GB GR 


Waterloo Ontario N2K4B1 (CA) 




HU IE IS IT LI LT LU LV MC NL PL PT RO SE SI 


• Little, Herb 




SKTR 


Waterloo, Ontario N2T 2V8 (CA) 




Designated Extension States: 


• Brown, Michael K 




AL BA HR MK YU 


Kitchener Ontario N2M 2Z2 (CA) 


(71) 


Applicant: Research In Motion Limited 


(74) Representative: Rickard, David John et al 




Waterloo, Ontario N2L 3W8 (CA) 


26 Mallinson Road 






London SW11 1BP (GB) 


(72) 


Inventors: 




• 


Adams, Neil 


Remarks: 




Waterloo Ontario N2K 4E4 (CA) 


Amended claims in accordance with Rule 86 (2) EPC. 



(54) Display of secure messages on a mobile communication device 



CO 
00 
CO 

CO 
O 
00 



(57) A mobile communications device for the display 
of an incrementally received message includes a mes- 
sage viewer application for scanning the received por- 
tions of the message. On determination that the received 
portion of the message includes afirst displayable portion 
of the message content, the system signals to a message 
serverto halt the message serverfrom forwarding further 
portions of the message content. The system provides a 
mechanism for the user of the mobile communications 
device to cause the mobile communications device to 
further signal the the message server to recommence 
the forwarding of further portions of the secure message 
content to permit the verification of the e-mail based on 
the further portions of the secure message content. 
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Description 

[0001] This invention relates generally to the display 
of messages on mobile communication devices, and par- 
ticularly to the display of secure messages on such de- 5 
vices. 

[0002] Mobile communication devices with display 
screens are used to receive and display electronic mes- 
sages in text or graphical format. It is desirable for such 
devices to display received messages, such as e-mail 10 
messages, to users without excessive delay in new in- 
formation being displayed on the screens of the devices. 
[0003] However, it is common for electronic messages 
to include more information than that which will typically 
be displayed by a mobile communication device. For ex- 15 
ample, an e-mail message as sent may repeat the body 
of the message several times in different formats. It is 
common for the same content to be included in plaintext 
format, in rich text format and in HTML (hypertext markup 
language) format. At the mobile communication device, 20 
it is typically only appropriate to display the message 
body in one of the possible formats. Often, for reasons 
of efficiency, only the plaintext version of the message 
body will be displayed. 

[0004] Where a user employs a mobile communica- 25 
tions environment in which messages are forwarded to 
the device from a message server, the server may be 
configured to send only a single version of the message 
body to the mobile communications device. This provides 
efficiencies in the communication to the mobile commu- 30 
nication device. From the perspective of the user of the 
device, such an approach will reduce the time that would 
otherwise have been taken for the mobile communica- 
tions device to receive, process and redraw the screen 
as required by the device operation when in receipt of 35 
the differently formatted information. 
[0005] However, this approach may not be available 
when mobile communication devices are configured to 
receive messages that are sent in accordance with a se- 
cure message format such as the Secure Multipurpose 40 
Internet Mail Extension (S/MIME) format. For such mes- 
sages to be verified by a mobile communication device, 
it is often required thatthe entire message (or a significant 
portion of the message) be received by the device. How- 
ever, where differently formatted message body informa- 45 
tion is repeated in the message, the secure message will 
include more data than will be displayed by the mobile 
communication device. As a result, the user of the device 
may experience undesirably slow performance while the 
device carries out processing steps relating to the data 50 
that is not displayed to the user but which steps are car- 
ried out as the device receives the information necessary 
to enable the message to be verified by the device. 
[0006] Accordingly, it is desirable to provide a system 
and method for the display of secure messages on a 55 
mobile communications device in which a secure mes- 
sage may be received and displayed by the device with- 
out causing undue delays in message display. 



Brief Description of the Drawings 
[0007] 

Figure 1 is an overview of an example communica- 
tion system in which a wireless communication de- 
vice may be used. 

Figure 2 is a block diagram of a further example com- 
munication system including multiple networks and 
multiple mobile communication devices. 

Figure 3 is a block diagram of a wireless mobile de- 
vice usable in the example communication system. 

Figure 4 is a flowchart showing the steps taken by a 
wireless mobile device to communicate with a mes- 
sage server to manage the forwarding of information 
to the device. 

Figure 5 is a flowchart showing the steps taken by a 
message server to manage the forwarding of infor- 
mation that may be encrypted to a wireless mobile 
device. 

Description of Preferred Embodiments 

[0008] Accordingly, a system on a mobile communica- 
tions device is preferably provided for the display of an 
incrementally received secure message. The system in- 
cludes a message viewer application for scanning the 
received portions of the message. On determination that 
the received portion of the message includes a first dis- 
playable portion of the message content, the system sig- 
nals to a message serverto halt the message serverfrom 
forwarding further portions of the message content. The 
system further provides a mechanism for the user of the 
mobile communications device to cause the mobile com- 
munications device to further signal the message server 
to recommence the forwarding of further portions of the 
secure message content to permit the verification of the 
e-mail based on the further portions of the secure mes- 
sage content. 

[0009] Advantages may include improved display per- 
formance for the user of a mobile communications device 
due to the halt in information being received from the 
message server where the mobile device will process, 
but not display, the information that would otherwise be 
initially received by the mobile communications device. 
However, the user remains able to carry out a security 
verification of the received message at the mobile com- 
munications device. 

[001 0] The invention in one aspect preferably compris- 
es a method for receiving a message on a mobile com- 
munications device, the message comprising a display- 
able message content portion capable of being viewed 
on the mobile communications device, the end of the 
displayable message content portion being identified by 
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a predefined indicator, the method comprising the steps 
of: receiving a first segment of the message; scanning 
the first segment for the predefined indicator; if the pre- 
defined indicator is not found within the first segment, 
automatically receiving a further segment of the mes- 
sage; and scanning the further segment of the message 
for the predefined indicator. 

[001 1] In another aspect, the invention preferably com- 
prises a method for receiving a message on a mobile 
communications device, the message comprising a dis- 
playable message content portion capable of being 
viewed on the mobile communications device, the end 
of the displayable message content portion being iden- 
tified by a predefined indicator, the method comprising 
the steps of: receiving a first segment of the message; 
scanning the first segment for the predefined indicator; 
if the predefined indicator is not found within the first seg- 
ment, automatically receiving a further segment of the 
message; and scanning the further segment of the mes- 
sage for the predefined indicator, wherein the first and 
any further segment is transmitted to the mobile commu- 
nications device by a server, the method further compris- 
ing the step of automatically transmitting a command to 
the server to transmit a further segment of the message, 
said step of transmitting a command being executable 
at any time during the method. 

[0012] In a further aspect, the invention preferably 
comprises a computer program product comprising code 
operative to carry out the steps of any of the aforesaid 
methods. 

[0013] In a further aspect, the invention preferably 
comprises a system for the display of a message receiv- 
able on a mobile communications device to a user, the 
message being automatically incrementally forwarded in 
segments to the mobile communications device by a 
message server, the message comprising a message 
content portion displayable on the mobile communica- 
tions device, the system comprising: 

means adapted to scan received segments of the 
message to determine if the entirety of a first display- 
able portion of the message has been received by 
the mobile communications device; and means 
adapted to signal the message serverto prevent the 
automatic incremental forwarding of segments of the 
message on the determination that the entirety of a 
first displayable portion has been received. 

[0014] Figure 1 is an overview of an example commu- 
nication system in which a wireless communication de- 
vice may be used. One skilled in the art will appreciate 
that there may be other different topologies, but the sys- 
tem shown in Figure 1 helps demonstrate the operation 
of the secure message processing systems and methods 
described in the present application. There may also be 
many message senders and recipients. The simple sys- 
tem shown in Figure 1 is for illustrative purposes only. 
[0015] Figure 1 shows an e-mail sender 10, the Inter- 



net 20, a message server system 40, a wireless gateway 
85, wireless infrastructure 90, a wireless network 105 
and a mobile communication device 100. 
[001 6] An e-mail sender system 1 0 may, for example, 
5 be connected to an ISP (Internet Service Provider) on 
which a user of the system 10 has an account, located 
within a company, possibly connected to a local area 
network (LAN), and connected to the Internet 20, or con- 
nected to the Internet 20 through a large ASP (application 
10 service provider) such as America Online (AOL). Those 
skilled in the art will appreciate that the systems shown 
in Figure 1 may instead be connected to a wide area 
network (WAN) other than the Internet, although e-mail 
transfers are commonly accomplished through Internet- 
's connected arrangements as shown in Figure 1. 

[0017] The message server 40 may be implemented, 
for example, on a network computer within the firewall of 
a corporation, a computer within an ISP or ASP system 
or the like, and acts as the main interface for e-mail ex- 
20 change over the Internet 20. Although other messaging 
systems might not require a message server system 40, 
a mobile device 100 configured for receiving and possibly 
sending e-mail will normally be associated with an ac- 
count on a message server. Perhaps the two most com- 
25 mon message servers are Microsoft Exchange™ and Lo- 
tus Domino™. These products are often used in conjunc- 
tion with Internet mail routers that route and deliver mail. 
These intermediate components are not shown in Figure 
1 , as they do notdirectly play a role inthesecure message 
30 processing described below. Message servers such as 
server 40 typically extend beyond just e-mail sending and 
receiving; they also include dynamic database storage 
engines that have predefined database formats for data 
like calendars, to-do lists, task lists, e-mail and documen- 
ts tation. 

[0018] The wireless gateway 85 and infrastructure 90 
provide a link between the Internet 20 and wireless net- 
work 1 05. The wireless infrastructure 90 determines the 
most likely network for locating a given user and tracks 

40 the user as they roam between countries or networks. A 
message is then delivered to the mobile device 100 via 
wireless transmission, typically at a radio frequency (RF), 
from a base station in the wireless network 105 to the 
mobile device 100. The particular network 105 may be 

45 virtually any wireless network over which messages may 
be exchanged with a mobile communication device. 
[001 9] As shown in Figure 1 , a composed e-mail mes- 
sage 15 is sent by the e-mail sender 10, located some- 
where on the Internet 20. This message 15 is normally 

50 fully in the clear and uses traditional Simple Mail Transfer 
Protocol (SMTP), RFC822 headers and Multipurpose In- 
ternet Mail Extension (MIME) body parts to define the 
format of the mail message. Thesetechniques are known 
to those skilled in the art. The message 1 5 arrives at the 

55 message server 40 and is normally stored in a message 
store. In a preferred embodiment described in further de- 
tail below, messages addressed to a message server 
account associated with a host system such as a home 
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computer or office computer which belongs to the user 
of a mobile device 1 00 are redirected from the message 
server 40 to the mobile device 1 00 as they are received. 
[0020] Regardless of the specific mechanism control- 
ling the forwarding of messages to the mobile device 1 00, 
the message 15, or possibly a translated or reformatted 
version thereof, is sent to the wireless gateway 85. The 
wireless infrastructure 90 includes a series of connec- 
tions to wireless network 105. These connections could 
be Integrated Services Digital Network (ISDN), Frame 
Relay orT1 connections using the TCP/IP protocol used 
throughout the Internet. As used herein, the term "wire- 
less network" is intended to include three different types 
of networks, those being (1) data-centric wireless net- 
works, (2) voice-centric wireless networks and (3) dual- 
mode networks that can support both voice and data 
communications over the same physical base stations. 
Combined dual-mode networks include, but are not lim- 
ited to, (1) Code Division Multiple Access (CDMA) net- 
works, (2) the Groupe Special Mobile or the Global Sys- 
tem for Mobile Communications (GSM) and the General 
Packet Radio Service (GPRS) networks, and (3) future 
third-generation (3G) networks like Enhanced Data-rates 
for Global Evolution (EDGE) and Universal Mobile Tele- 
communications Systems (UMTS). Some older exam- 
ples of data-centric network include the MobitexTM Ra- 
dio Network and the DataTACTM Radio Network. Exam- 
ples of oldervoice-centric data networks include Person- 
al Communication Systems (PCS) networks like GSM, 
and TDMA systems. 

[0021] Figure 2 is a block diagram of a further example 
communication system including multiple networks and 
multiple mobile communication devices. The system of 
Figure 2 is substantially similar to the Figure 1 system, 
but includes a host system 30, a redirection program 45, 
a mobile device cradle 65, a wireless virtual private net- 
work (VPN) router 75, an additional wireless network 1 1 0 
and multiple mobile communication devices 100. As de- 
scribed above in conjunction with Figure 1 , Figure 2 rep- 
resents an overview of a sample network topology. Al- 
though the message processing systems and methods 
described herein may be applied to networks having 
many different topologies, the network of Figure 2 is use- 
ful in understanding an automatic e-mail redirection sys- 
tem mentioned briefly above. 

[0022] The central host system 30 will typically be a 
corporate office or other LAN, but may instead be a home 
office computer or some other private system where mail 
messages are being exchanged. Within the host system 
30 is the message server40, running on acomputerwith- 
in the firewall of the host system that acts as the main 
interface forthe host system to exchange e-mail with the 
Internet 20. In the system of Figure 2, the redirection 
program 45 enables redirection of data items from the 
server 40 to a mobile communication device 100. Al- 
though the redirection program 45 is shown to reside on 
the same machine as the message server 40 for ease of 
presentation, there is no requirement that it must reside 



on the message server. The redirection program 45 and 
the message server 40 are designed to co-operate and 
interact to allow the pushing of information to mobile de- 
vices 100. In this installation, the redirection program 45 

5 takes confidential and non-confidential corporate infor- 
mation for a specific user and redirects it out through the 
corporate firewall to mobile devices 1 00. A more detailed 
description of the redirection software 45 may be found 
in the commonly assigned United States Patent 

10 6,21 9,694 ("the '694 Patent"), entitled "System and Meth- 
od for Pushing Information From A Host System To A 
Mobile Data Communication Device Having A Shared 
Electronic Address", and issued to the assignee of the 
instant application on April 1 7, 2001 , which is hereby in- 

15 corporated into the present application by reference. This 
push technique may use a wireless friendly encoding, 
compression and encryption technique to deliver all in- 
formation to a mobile device, thus effectively extending 
the security firewall to include each mobile device 100 

20 associated with the host system 30. 

[0023] As shown in Figure 2, there may be many al- 
ternative paths for getting information to the mobile de- 
vice 100. One method for loading information onto the 
mobile device 1 00 is through a port designated 50, using 

25 a device cradle 65. This method tends to be useful for 
bulk information updates often performed at initialization 
of a mobile device 1 00 with the host system 30 or a com- 
puter 35 within the system 30. The other main method 
for data exchange is over-the-air using wireless networks 

30 to deliver the information. As shown in Figure 2, this may 
be accomplished through a wireless VPN router 75 or 
through a traditional Internet connection 95 to a wireless 
gateway 85 and a wireless infrastructure 90, as described 
above. A VPN connection could be established directly 

35 through a specific wireless network 1 1 0 to a mobile de- 
vice 100. The possibility of using a wireless VPN router 
75 is contemplated to be used with Internet Protocol (IP) 
Version 6 (IPV6) on IP-based wireless networks. This 
protocol will provide enough I P addresses to dedicate an 

40 |p address to every mobile device 1 00 and thus make it 
possible to push information to a mobile device 100 at 
any time. A principal advantage of using this wireless 
VPN router 75 is that it could be an off-the-shelf VPN 
component, thus it would not require a separate wireless 

45 gateway 85 and wireless infrastructure 90 to be used. A 
VPN connection would preferably be a Transmission 
Control Protocol (TCP)/IP or User Datagram Protocol 
(UDP)/IP connection to deliver the messages directly to 
the mobile device 1 00. If a wireless VPN 75 is not avail- 

50 able then a link 95 to the Internet 20 is the most common 
connection mechanism available and has been de- 
scribed above. 

[0024] In the automatic redirection system of Figure 2, 
a composed e-mail message 1 5 leaving the e-mail send- 
55 er 1 0 arrives at the message server 40 and is redirected 
by the redirection program 45 to the mobile device 1 00. 
As this redirection takes place the message 15 is re-en- 
veloped, as indicated at 80, and a possibly proprietary 
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compression and encryption algorithm can then be ap- 
plied to the original message 15. In this way, messages 
being read on the mobile device 100 are no less secure 
than if they were read on a desktop workstation such as 
35 within the firewall. All messages exchanged between 
the redirection program 45 and the mobile device 100 
preferably use this message repackaging technique. An- 
other goal of this outer envelope is to maintain the ad- 
dressing information of the original message except the 
sender's and the receiver's address. This allows reply 
messages to reach the appropriate destination, and also 
allows the "from" field to reflect the mobile user's desktop 
address. Using the user's e-mail address from the mobile 
device 100 allows the received message to appear as 
though the message originated from the user's desktop 
system 35 rather than the mobile device 100. 
[0025] With reference back to the port 50 and cradle 
65 connectivity to the mobile device 1 00, this connection 
path offers many advantages for enabling one-time data 
exchange of large items. For those skilled in the art of 
personal digital assistants (PDAs) and synchronization, 
the most common data exchanged over this link is Per- 
sonal Information Management (PIM) data 55. When ex- 
changed for the first time this data tends to be large in 
quantity, bulky in nature and requires a large bandwidth 
to get loaded onto the mobile device 1 00 where it can be 
used on the road. This serial link may also be used for 
other purposes, including setting up a private security 
key 1 1 1 such as an S/MIME or PGP (Pretty Good Privacy 
data encryption) specific private key, the Certificate 
(Cert) of the user and their Certificate Revocation Lists 
(CRLs) 60. The private key is preferably exchanged so 
that the desktop 35 and mobile device 100 share one 
personality and one method for accessing all mail. The 
Cert and CRLs are normally exchanged over such a link 
because they represent a large amount of the data that 
is required by the device for S/MIME, PGP and other 
public key security methods. 

[0026] S/M IME is a message security protocol that en- 
ables end-to-end authorization and protection of data in- 
tegrity and privacy from the time that the originator sends 
the message until the message recipient decodes and 
reads the message. S/M IME allows message senders to 
digitally sign messages using their digital signature, en- 
crypt messages with the recipient's public key, or both 
digitally sign and encrypt the message. 
[0027] In the preferred embodiment an S/MIME mes- 
sage may be verified both at message server 40 and at 
mobile device 1 00, both shown in Figure 2. For a user of 
the mobile communications device, verification at mobile 
device 100 provides a higher level of security than relying 
on the verification at message server 40. 1 n some cases, 
however, the verification at message server 40 may be 
sufficient for the user. In mobile device 100, a verification 
application is executable to determine if some or all of a 
received message meets message security protocol re- 
quirements. The verification application executed on the 
mobile device 1 00 may decrypt the message received at 



the mobile device 1 00, or it may verify a digital signature 
appended to the message, or it may both decrypt and 
verify a digital signature, depending on whetherthe mes- 
sage received was encrypted, signed, or both signed and 

5 encrypted, respectively. If the verification application is 
executed at the message server 40, the verification ap- 
plication may still decrypt, verify the digital signature of, 
or both decrypt and verify the digital signature of a mes- 
sage received at the server 40, but the resultant decrypt- 

10 ed message then delivered to the mobile device 100 
could thus be subject to tampering undetected by the 
user of the mobile device 100 upon receipt of the resultant 
message. 

[0028] In some cases, the verification application ex- 
15 ecutable by mobile device 1 00 will be unable to complete 
the verification process without receipt of the entire mes- 
sage or a significant portion of the message. For exam- 
ple, where a portion of a message is digitally signed it is 
typical for the verification of the signature to rely on the 
20 content of that portion of the message. Thus where a 
portion of the message, perhaps as much as the entire 
message body itself, is encoded or signed in this way, 
this portion of the message subject to verification, as well 
as any digital certificate attached to the message, must 
25 be received by mobile device 1 00 before verification at 
mobile device 1 00 is able to be carried out. If the message 
to be verified comprises other file attachments, then typ- 
ically all of the attachments must be received by the mo- 
bile device 1 00 before the verification application can ver- 
so jfy the message. 

[0029] The above operational characteristic may ad- 
versely affect the speed at which information is displayed 
to a user of mobile device 1 00. This is particularly the 
case where the message being received by mobile de- 
35 vice 1 00 has either repeated message body contents (as 
where plaintext, rich text and/or HTML formatted mes- 
sage body versions are included) or attachments. In ei- 
ther case, information may be received which information 
is not displayable to the user or is not intended to be 
40 displayed to the user of the mobile device 1 00. 

[0030] An approach to solving this potential adverse 
impact on perceived device responsiveness is for the 
message server 40 to edit messages being forwarded to 
the mobile communication device 100. Such an editing 
45 step can remove certain repeated portions of the mes- 
sage body. For example, if the message received at the 
message server 40 contains the content of the message 
in plaintext and in HTML, then the server 40 could strip 
out the HTML portion of the message before forwarding 
50 it to the mobile device 1 00. However, where the mobile 
communication device 100 executes a verification appli- 
cation, it will not be possible for the message server 40 
itself to automatically edit messages to remove such re- 
peated portions, since this would cause the verification 
55 step to fail. 

[0031] Accordingly, the execution of a verification ap- 
plication by the mobile device 1 00 may require the device 
1 00 to receive non-displayable or repetitive portions be- 
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fore verification can be accomplished, and consequently 
the mobile device 100 may exhibit slower than optimal 
display characteristics as the non-displayable or repeti- 
tive information is received and processed by mobile de- 
vice 100. 

[0032] According to the preferred embodiment, how- 
ever, a message viewer application for displaying mes- 
sages to a user executable on the mobile communication 
device 100 also operates to potentially reduce the 
number of portions of the message that will be forwarded 
by the message server 40. In the preferred embodiment, 
mobile communication device 100 is able to communi- 
cate with the message server 40 to manage the forward- 
ing of information to the device. As shown in Figure 4, 
the message data for a first message received by the 
message server 40 is forwarded to the mobile commu- 
nication device 100 in segments or chunks of predeter- 
mined size (for example, in segments of up to 1 kilobyte), 
initially with a first segment being forwarded at step 405. 
This first segment comprises only content that can be 
displayed to the user on the mobile device 100; so, for 
example, if the message is encrypted, the segment may 
be empty if the message was not previously decrypted 
by the message server 40. In that case, the user would 
see only header information for the message (e.g., the 
sender information, the timestamp, or the subject line) 
and would be advised by the message viewer application 
that additional content is available for downloading and 
verification by the verification application. Otherwise, if 
the message is not encrypted, the first segment sent at 
step 405 comprises message content. 
[0033] After receipt of each segment at the mobile 
communication device 100, the message viewer appli- 
cation scans the message data received in that segment 
at step 410. There are two results of the segment scan 
at step 41 0 that are shown in Figure 4. At decision step 
430 (described below), the renderable nature of the seg- 
ment determines future steps. At decision step 431, the 
presence of a delimiter determines whether a complete 
renderable portion of the message has been received at 
the mobile device 1 00. For example, if the message view- 
er application on the mobile device 1 00 is capable of 
displaying plaintext content to the user, as opposed to 
other formats such as Rich Text Format (RTF) or HTML, 
the message viewer application scans for a predeter- 
mined indicator, such as a defined boundary delimiter, 
that is known to define the end of plaintext content. In 
the preferred embodiment, the message is defined using 
the S/MIME protocol and therefore different parts of the 
message body are delimited in defined ways. For exam- 
ple, a plaintext portion of the message body is preceded 
by a defined boundary delimiter such as "-Part_ 
Boundary_Alternative" with a content format specifier, 
for example, "Content-Type: text/plain". Similar content 
format specifiers ("Content-Type: text/html" and "Con- 
tent-Type: text/RTF" for HTML and RTF format, respec- 
tively) may befound in message content portions of mes- 
sages received by the mobile communication device 1 00. 



Thus, the message view application at step 41 0 may scan 
or search the received message segment for the pres- 
ence of "-Part_Boundary_Alternative Content-Type: text/ 
plain". If such a delimiter, or other predefined indicator, 

5 is found in the message segment, then the message view 
application may determine that it has received a complete 
portion of plaintext content and instructs the server 40 to 
cease sending further segments at step 415. If such a 
delimiter is not found in the message segment by the 

10 scan, then a further message segment is automatically 
delivered to the mobile communication device 100 by the 
message server 40 at step 405. The further message 
segment is similarly scanned or searched at step 410, 
and yet a further message segment is automatically de- 

15 livered at step 405 from the message server 40 if the 
delimiter is not found. At any time during this process, 
the user of the mobile communication device 100 may 
view the segments of the message that have already 
been downloaded to the mobile device 1 00. 

20 [0034] Thus, in the preferred embodiment, the scan 
carried out by the message viewer application parses the 
incoming message segmentsto determine whetherafirst 
set of plaintext information has been received. In pre- 
ferred embodiment given above, the delimiters are de- 

25 fined in accordance with Request for Comment 2046 
(RFC 2046), which describes MIME alternate encodings 
of message text. In particular, section 5.1 .4 of RFC 2046 
describes the inclusion of alternative parts in "order of 
increasing faithfu Iness to the original content". I n practice 

30 in accordance with this order of increasing faithfulness, 
the most simple encoding (typically plaintext) is included 
in the message priorto other encodings (HTML and Rich 
Text, for example). Thus, by following the method out- 
lined above, a complete portion of plaintext content may 

35 be downloaded without user intervention, and without 
downloading message segments comprising exclusively 
non-displayable or repetitive information to the mobile 
device 1 00. 

[0035] I n the preferred embodiment, the automatic de- 

40 livery of the further segments with each repeated execu- 
tion of step 405 is controlled by a command referred to 
here as the AUTO MORE command. Preferably, the AU- 
TO MORE command is specified by the mobile commu- 
nication device 100 by default, although it may be man- 

45 ually specified by the user. When the default, or user- 
specified, AUTO MORE command is invoked, a prede- 
fined indicator, which may be a flag set in a communica- 
tion from the device to the server, is sent by the mobile 
communication device 100 to the message server 40 at 

50 step 395. On receipt of the predefined indicator, the mes- 
sage server 40 will carry out steps to send the further 
message segments to the mobile communication device 
1 00, withoutfurther requests being requiredfromthe user 
of the mobile device 100. 

55 [0036] Although in Figure 4 step 395 is shown as being 
executed priorto step 405, persons skilled in the art will 
appreciate that the step may be executed at other points 
in the process; for example, the predefined indicator may 
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have already been received by the message server 40 
prior to receipt of the message at the server 40 (this may 
be the case if the AUTO MORE command is invoked by 
default). Alternatively, step 395 may be executed by the 
mobile communication device 1 00 after receipt of a mes- 
sage segment at step 405; for example, the indicator may 
be sent to the message server 40 together with other 
data acknowledging receipt of the message segment. 
Preferably, the predefined indicator is communicated to 
the message server 40 at intervals, or during any other 
status communication between the mobile communica- 
tion device 1 00 and the message server 40. In the pre- 
ferred embodiment, the message viewer application 
communicates the predefined indicator to the message 
server 40. In alternate embodiments, a software module 
on the mobile communication device 100 may instead 
be configured to communicate the predefined indicator 
to the message server 40 based on commands sent be- 
tween the message viewer application and the software 
module. 

[0037] If the message viewer application on the mobile 
device 100 detects the predetermined delimiter in a re- 
ceived message segment, the AUTO MORE command 
for that particular message is disabled, and this is com- 
municated to the server 40 at step 415. The message 
server 40 is thus instructed to cease sending segments 
of that message to the mobile device 1 00. 
[0038] This heuristic is adopted in the preferred em- 
bodiment based on the assumption that the viewable 
content to be received by mobile communications device 
1 00 is contained in the first plaintext portion of the mes- 
sage content. In fact, other portions of the message may 
contain plaintext portions, or the mobile device may in- 
clude functionality to permit display of the message con- 
tent having other encodings. In the preferred embodi- 
ment efficiencies are obtained by using the heuristic de- 
scribed. Preferably, the downloading of further message 
segments is executed by the mobile communication de- 
vice 1 00 only when the user is viewing the content down- 
loaded so far of that particular message, in order to re- 
duce memory usage on the mobile device 1 00. However, 
in an alternate embodiment, the message viewer appli- 
cation may scan the initial message segments of other 
messages not currently being viewed by the user and 
download the remaining displayable portions of those 
other messages according to the method described 
above. This embodiment may be less desirable, as it in- 
creases the volume of data transmission between the 
mobile device 1 00 and the message server 40. 
[0039] In the preferred embodiment, the potential for 
perceived delays in the operation of the mobile device is 
reduced due to the message server 40 halting the auto- 
matic forwarding of content to the mobile communication 
device 1 00, as described above. Content that is not view- 
able in the preferred embodiment by the mobile commu- 
nication device 1 00 is not automatically forwarded to the 
device by the message server 40. In the situation where 
the message comprises signed, encrypted, orsigned and 



encrypted content which is not readily viewable by the 
message viewer application, some efficiencies may still 
be realized. The message viewer application, upon rec- 
ognition of the message as an encrypted message at 

5 step 430, may disable the AUTO MORE command at 
step 41 5. The user may then optionally manually invoke 
the AUTO MORE mode in order to download and verify 
the content of the entire message. Preferably, if the mes- 
sage viewer application recognizes the application as be- 

10 ing digitally signed but not encrypted, the message view- 
er application still receives a further segment 405 if the 
delimiter or other predefined indicator is not found in the 
first segment, since the message still contains displaya- 
ble content besides the digital certificate attached to the 

15 message. 

[0040] Thus, the ability to verify a signed and/or en- 
crypted S/MIME message remains available to the user 
of the device 1 00. In this scenario, the message viewer 
application may alternatively provide a VERIFY com- 

20 mand to be manually invoked by the user, which both 
invokes the AUTO MORE command, and then invokes 
the verification application after all segments of the 
signed and/or encrypted message have been download- 
ed. 

25 [0041] It will be appreciated that this approach to the 
display of secure e-mails will require the user to be fa- 
miliar with the potential forthe received message to have 
a tentative security status. A received S/MIME message 
may be accompanied by an indication that the message 

30 server 40 has verified the message, but the message 
may also be indicated to the user to have an indetermi- 
nate status as to verification at the mobile device. The 
user's command to receive further portions of the mes- 
sage (by use of AUTO MORE, for example), if selected, 

35 will result in other parts of the message being forwarded 
to allow the verification process at the mobile device to 
be carried out. In the meantime, the user experience is 
enhanced as there is a reduction in response time at the 
mobile device 100 due to the reduction in non-viewable 

40 information being forwarded to the device 1 00. 

[0042] In a further preferred embodiment, further effi- 
ciencies are provided for viewingthe displayable portions 
of a message. Referring to Figure 5, after the server 40 
receives a message for forwarding at step 440, server 

45 40 sends a first segment at step 445. As referred to 
above, preferably this first segment comprises message 
content, but in the circumstance where the message is 
encrypted, the first segment may not comprise any mes- 
sage content unless it is decrypted at the server 40. 

so [0043] If the user of mobile communications device 
1 00 wishes to view the remainder of the displayable por- 
tion of the message, the user may send a MORE ALL 
command to the message server 40. This MORE ALL 
command may be invoked manually, or it may be set as 

55 a default on the mobile communication device 1 00. If the 
MORE ALL command is not sent to the message server 
40, the steps referred to below will not be carried out by 
the server of the preferred embodiment. In either case, 
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the mobile device 1 00 transmits a predetermined indica- 
tor to the message server 40 requesting the remainder 
of the displayable portion of the message. Once the serv- 
er 40 receives this MORE ALL command (decision 
branch 450), the server 40 parses the remainder of the 
message at step 455 in order to identify the end of the 
portion of the message content comprising content that 
is displayable to the user on the mobile device 1 00. This 
parsing step is generally similar to the step 41 0 described 
in the context of the mobile device 100 with respect to 
each individual segment received at the device 100. 
However, in this particular embodiment, it is the message 
server 40 that scans the message for the delimiter or 
other predefined indicator identifying the end of the dis- 
playable (such as plaintext) portion of the message. 
[0044] As is described in more detail below, once the 
complete displayable portion of the message is found by 
identifyingthe delimiterwithin the message, the message 
server 40 then transmits the displayable portion of the 
message to the mobile device 100. The transmission of 
the remaining displayable portion of the message may 
be carried out in a plurality of segments, as described 
above, or the remainder of the displayable portion may 
be transmitted as a single, larger segment. However the 
remainder of the displayable portion of the message is 
received by the mobile communication device 100, it is 
the message server 40 that scans the message for the 
appropriate delimiter, and notthe mobile device 1 00. The 
transmission of any further segments of the displayable 
portion of the message by the server 40 is carried out 
without any further MORE ALL or AUTO MORE com- 
mands from the mobile device 1 00. The MORE ALL and 
AUTO MORE commands described above may be used 
concurrently with respect to the same message being 
viewed on the mobile device 1 00. Whilethe AUTO MORE 
command may be invoked by default, and the mobile 
device 100 may scan each received message segment 
forthe predefined indicator or delimiter indicating the end 
of the displayable portion of the message, the user may 
manually intervene and hasten the downloading of the 
entire viewable content of the message to the mobile 
device by invoking the MORE ALL command. Preferably, 
the MORE ALL command is available to be invoked by 
the user via a menu option or other command keystroke 
or action in the message viewing application. 
[0045] In the event that the message received by the 
message server 40 is digitally signed, encrypted, or both 
digitally signed and encrypted, some efficiencies may still 
be realized using the MORE ALL command. If the mes- 
sage is digitally signed (see decision branch 460), then 
upon receivingthe MORE ALL command from the mobile 
communication device 1 00, the message server 40 will 
have parsed the message to identify the displayable con- 
tent of the message at step 455, but also removes any 
digital certificates attached to the message (step 465) 
before transmitting the displayable message content to 
the mobile device 100 at step 470. If the message is 
encrypted (or signed and encrypted)(see decision 



branch 475), then the displayable content within the mes- 
sage may be transmitted to the mobile device 100 pur- 
suant to a MORE ALL command only if the message 
server 40 receives the session key applicable to the en- 

5 crypted message from the mobile device 1 00 first. 
[0046] Figure 5 shows steps 480, 485 and 490 which 
carry out the decryption of the message, if the session 
key is available. As will be appreciated the server 40 will 
invoke a time out condition if the session key is not re- 

10 ceived. 

[0047] As will be appreciated by those skilled in the 
art, this reduces the security of the message and is there- 
fore less desirable. However, if the message server 40 
is provided with the key and can decrypt the message, 
15 the message may then be parsed at step 455 and then 
the displayable portions transmitted to the mobile device 
1 00 at step 470. 

[0048] As another example, the systems and methods 
disclosed herein may be used with many different com- 

20 puters and devices, such as a wireless mobile commu- 
nications device shown in Figure 3. With reference to 
Figure 3, the mobile device 100 is a dual-mode mobile 
device and includes a transceiver 31 1 , a microprocessor 
338, a display 322, non-volatile memory 324, random 

25 access memory (RAM) 326, one or more auxiliary input/ 
output (I/O) devices 328, a serial port 330, an input de- 
vice, such as a keyboard 332, a speaker 334, a micro- 
phone 336, a short-range wireless communications sub- 
system 340, and other device sub-systems 342. 

30 [0049] The transceiver 31 1 includes a receiver 31 2, a 
transmitter31 4, antennas 31 6 and 31 8, one ormore local 
oscillators 31 3, and a digital signal processor (DSP) 320. 
The antennas 316 and 318 may be antenna elements of 
a multiple-element antenna, and are preferably embed- 

35 ded antennas. However, the systems and methods de- 
scribed herein are in noway restricted to a particular type 
of antenna, or even to wireless communication devices. 
[0050] The mobile device 1 00 is preferably a two-way 
communication device having voice and data communi- 

40 cation capabilities. Thus, for example, the mobile device 
100 may communicate over a voice network, such as 
any of the analog or digital cellular networks, and may 
also communicate over a data network. The voice and 
data networks are depicted in FIGURE 3 by the commu- 

45 nication tower 31 9. These voice and data networks may 
be separate communication networks using separate in- 
frastructure, such as base stations, network controllers, 
etc., or they may be integrated into a single wireless net- 
work. 

50 [0051] The transceiver 311 is used to communicate 
with the network 319, and includes the receiver 31 2, the 
transmitter 31 4, the one or more local oscillators 313 and 
the DSP 320. The DSP 320 is used to send and receive 
signals to and from the transceivers 316 and 318, and 

55 also provides control information to the receiver 31 2 and 
thetransmitter 31 4. If the voice and data communications 
occur at a single frequency, or closely-spaced sets of 
frequencies, then a single local oscillator 313 may be 
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used in conjunction with the receiver 312 and the trans- 
mitter 314. Alternatively, if different frequencies are uti- 
lized for voice communications versus data communica- 
tions for example, then a plurality of local oscillators 313 
can be used to generate a plurality of frequencies corre- 5 
sponding to the voice and data networks 319. Informa- 
tion, which includes both voice and data information, is 
communicated to and from the transceiver 31 1 via a link 
between the DSP 320 and the microprocessor 338. 
[0052] The detailed design of the transceiver 311, such 10 
as frequency band, component selection, power level, 
etc., will be dependent upon the communication network 
31 9 in which the mobile device 1 00 is intended to operate. 
For example, a mobile device 1 00 intended to operate in 
a North American market may include a transceiver 31 1 15 
designed to operate with any of a variety of voice com- 
munication networks, such as the Mobitex or DataTAC 
mobile data communication networks, AMPS, TDMA, 
CDMA, PCS, etc. , whereas a mobile device 1 00 intended 
for use in Europe may be configured to operate with the 20 
GPRS data communication network and the GSM voice 
communication network. Other types of data and voice 
networks, both separate and integrated, may also be uti- 
lized with a mobile device 100. 

[0053] Depending upon the type of network or net- 25 
works 31 9, the access requirementsforthe mobile device 
1 00 may also vary. For example, in the Mobitex and Da- 
taTAC data networks, mobile devices are registered on 
the network using a unique identification number asso- 
ciated with each mobile device. In GPRS data networks, 30 
however, network access is associated with a subscriber 
or user of a mobile device. A GPRS device typically re- 
quires a subscriber identity module ("SIM"), which is re- 
quired in order to operate a mobile device on a GPRS 
network. Local or non-network communication functions 35 
(if any) may be operable, without the SIM device, but a 
mobile device will be unable to carry out any functions 
involving communications over the data network 319, 
other than any legally required operations, such as '91 1 ' 
emergency calling. 40 
[0054] After any required network registration or acti- 
vation procedures have been completed, the mobile de- 
vice 100 may the send and receive communication sig- 
nals, including both voice and data signals, over the net- 
works 31 9. Signals received by the antenna 31 6 from the 45 
communication network 319 are routed to the receiver 
312, which provides for signal amplification, frequency 
down conversion, filtering, channel selection, etc., and 
may also provide analog to digital conversion. Analog to 
digital conversion of the received signal allows more 50 
complex communication functions, such as digital de- 
modulation and decoding to be performed usingthe DSP 
320. In a similar manner, signals to be transmitted to the 
network 319 are processed, including modulation and 
encoding, for example, by the DSP 320 and are then 55 
provided to the transmitter 31 4 for digital to analog con- 
version, frequency up conversion, filtering, amplification 
and transmission to the communication network 31 9 via 



the antenna 31 8. 

[0055] In addition to processing the communication 
signals, the DSP 320 also provides for transceiver con- 
trol. For example, the gain levels applied to communica- 
tion signals in the receiver 312 and the transmitter 314 
may be adaptively controlled through automatic gai n con- 
trol algorithms implemented in the DSP 320. Othertrans- 
ceiver control algorithms could also be implemented in 
the DSP 320 in order to provide more sophisticated con- 
trol of the transceiver 31 1 . 

[0056] The microprocessor 338 preferably manages 
and controls the overall operation of the mobile device 
1 00. Many types of microprocessors or microcontrollers 
could be used here, or, alternatively, a single DSP 320 
could be used to carry out the functions of the microproc- 
essor338. Low-level communication functions, including 
at least data and voice communications, are performed 
through the DSP 320 in the transceiver 31 1 . Other, high- 
level communication applications, such as a voice com- 
munication application 324A, and a data communication 
application 324B may be stored in the non-volatile mem- 
ory 324 for execution by the microprocessor 338. For 
example, the voice communication module 324A may 
provide a high-level user interface operable to transmit 
and receive voice calls between the mobile device 100 
and a plurality of other voice or dual-mode devices via 
the network 31 9. Similarly, the data communication mod- 
ule 324B may provide a high-level user interface opera- 
ble for sending and receiving data, such as e-mail mes- 
sages, files, organizer information, short text messages, 
etc., between the mobile device 100 and a plurality of 
other data devices via the networks 31 9. The microproc- 
essor 338 also interacts with other device subsystems, 
such as the display 322, the RAM 326, the auxiliary input/ 
output (I/O) subsystems 328, the serial port 330, the key- 
board 332, the speaker 334, the microphone 336, the 
short-range communications subsystem 340 and any 
other device subsystems generally designated as 342. 
[0057] Some of the subsystems shown in FIGURE 3 
perform communication-related functions, whereas oth- 
er subsystems may provide "resident" oron-device func- 
tions. Notably, some subsystems, such as the keyboard 
332 and the display 322 may be used for both commu- 
nication-related functions, such as entering a text mes- 
sage for transmission over a data communication net- 
work, and device-resident functions such as a calculator 
or task list or other PDA type functions. 
[0058] Operating system software used by the micro- 
processor 338 is preferably stored in a persistent store 
such as non-volatile memory 324. The non-volatile mem- 
ory 324 may be implemented, for example, as a Flash 
memory component, or as battery backed-up RAM. In 
addition to the operating system, which controls low-level 
functions of the mobile device 31 0, the non-volatile mem- 
ory 324 includes a plurality of software modules 324A- 
324N that can be executed by the microprocessor 338 
(and/or the DSP 320), including a voice communication 
module 324A, a data communication module 324B, and 
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a plurality of other operational modules 324N forcarrying 
out a plurality of other functions. These modules are ex- 
ecuted by the microprocessor 338 and provide a high- 
level interface between a user and the mobile device 1 00. 
This interface typically includes a graphical component 5 
provided through the display 322, and an input/output 
component provided through the auxiliary I/O 328, key- 
board 332, speaker 334, and microphone 336. The op- 
erating system, specific device applications or modules, 
or parts thereof, may be temporarily loaded into a volatile 10 
store, such as RAM 326 for faster operation. Moreover, 
received communication signals may also be temporarily 
stored to RAM 326, before permanently writing them to 
a file system located in a persistent store such as the 
Flash memory 324. 15 
[0059] An exemplary application module 324N that 
may be loaded onto the mobile device 1 00 is a personal 
information manager (PIM) application providing PDA 
functionality, such as calendar events, appointments, 
and task items. This module 324N may also interact with 20 
the voice communication module 324A for managing 
phone calls, voice mails, etc., and may also interact with 
the data communication module for managing e-mail 
communications and other data transmissions. Alterna- 
tively, all of the functionality of the voice communication 25 
module 324A and the data communication module 324B 
may be integrated into the PIM module. 
[0060] The non-volatile memory 324 preferably also 
provides a file system to facilitate storage of PIM data 
items on the device. The PIM application preferably in- 30 
eludes the ability to send and receive data items, either 
by itself, or in conjunction with the voice and data com- 
munication modules 324A, 324B, via the wireless net- 
works 31 9. The PIM data items are preferably seamlessly 
integrated, synchronized and updated, via the wireless 35 
networks 319, with a corresponding set of data items 
stored or associated with a host computer system, there- 
by creating a mirrored system for data items associated 
with a particular user. 

[0061] Context objects representing at least partially 40 
decoded data items, as well as fully decoded data items, 
are preferably stored on the mobile device 100 in a vol- 
atile and non-persistent store such as the RAM 326. Such 
information may instead be stored in the non-volatile 
memory 324, for example, when storage intervals are 45 
relatively short, such that the information is removedfrom 
memory soon after it is stored. However, storage of this 
information in the RAM 326 or another volatile and non- 
persistent store is preferred, in order to ensure that the 
information is erased from memory when the mobile de- 50 
vice 1 00 loses power. This prevents an unauthorized par- 
ty from obtaining any stored decoded or partially decoded 
information by removing a memory chip from the mobile 
device 100, for example. 

[0062] The mobile device 100 may be manually syn- 55 
chronized with a host system by placing the device 1 00 
in an interface cradle, which couples the serial port 330 
of the mobile device 1 00 to the serial port of a computer 



system or device. The serial port 330 may also be used 
to enable a user to set preferences through an external 
device or software application, or to download other ap- 
plication modules 324N for installation. This wired down- 
load path may be used to load an encryption key onto 
the device, which is a more secure method than exchang- 
ing encryption information via the wireless network 31 9. 
Interfaces for other wired download paths may be pro- 
vided in the mobile device 100, in addition to or instead 
of the serial port 330. For example, a USB port would 
provide an interface to a similarly equipped personal 
computer. 

[0063] Additional application modules 324N may be 
loaded onto the mobile device 1 00 through the networks 
31 9, through an auxiliary I/O subsystem 328, through the 
serial port 330, through the short-range communications 
subsystem 340, or through any other suitable subsystem 
342, and installed by a user in the non-volatile memory 
324 or RAM 326. Such flexibility in application installation 
increases the functionality of the mobile device 1 00 and 
may provide enhanced on-device functions, communi- 
cation-related functions, or both. For example, secure 
communication applications may enable electronic com- 
merce functions and other such financial transactions to 
be performed using the mobile device 100. 
[0064] When the mobile device 100 is operating in a 
data communication mode, a received signal, such as a 
text message or a web page download, is processed by 
the transceiver module 31 1 and provided to the micro- 
processor 338, which preferably further processes the 
received signal in multiple stages as described above, 
for eventual output to the display 322, or, alternatively, 
to an auxiliary I/O device 328. A user of mobile device 
1 00 may also compose data items, such as e-mail mes- 
sages, using the keyboard 332, which is preferably a 
complete alphanumeric keyboard laid out in the QWER- 
TY style, although other styles of complete alphanumeric 
keyboards such as the known DVORAK style may also 
be used. User input to the mobile device 100 is further 
enhanced with a plurality of auxiliary I/O devices 328, 
which may include a thumbwheel input device, a touch- 
pad, a variety of switches, a rocker input switch, etc. The 
composed data items input by the user may then be trans- 
mitted over the communication networks 319 via the 
transceiver module 31 1 . 

[0065] When the mobile device 100 is operating in a 
voice communication mode, the overall operation of the 
mobile device is substantially similar to the data mode, 
except that received signals are preferably be output to 
the speaker 334 and voice signals for transmission are 
generated by a microphone 336. Alternative voice or au- 
dio I/O subsystems, such as a voice message recording 
subsystem, may also be implemented on the mobile de- 
vice 100. Although voice or audio signal output is pref- 
erably accomplished primarily through the speaker 334, 
the display 322 may also be used to provide an indication 
of the identity of a calling party, the duration of a voice 
call, or other voice call related information. For example, 
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the microprocessor 338, in conjunction with the voice 
communication module and the operating system soft- 
ware, may detect the caller identification information of 
an incoming voice call and display it on the display 322. 
[0066] A short-range communications subsystem 340 5 
is also included in the mobile device 1 00. The subsystem 
340 may include an infrared device and associated cir- 
cuits and components, or a short-range RF communica- 
tion module such as a Bluetooth™ module or an 802.1 1 
module, for example, to provide for communication with 10 
similarly-enabled systems and devices. Those skilled in 
the art will appreciate that "Bluetooth" and "802.1 1 " refer 
to sets of specifications, available from the Institute of 
Electrical and Electronics Engineers, relating to wireless 
personal area networks and wireless local area networks, 15 
respectively. 

[0067] The systems' and methods' data may be stored 
in one or more data stores. The data stores can be of 
many different types of storage devices and program- 
ming constructs, such as RAM, ROM, Flash memory, 20 
programming data structures, programming variables, 
etc. It is noted that data structures describe formats for 
use in organizing and storing data in databases, pro- 
grams, memory, or other computer-readable media for 
use by a computer program. 25 
[0068] The systems and methods may be provided on 
many different types of computer-readable media includ- 
ing computer storage mechanisms (e.g., CD-ROM, dis- 
kette, RAM, flash memory, computer's hard drive, etc.) 
that contain instructions for use in execution by a proc- 30 
essorto perform the methods' operations and implement 
the systems described herein. 

[0069] The computer components, software modules, 
functions and data structures described herein may be 
connected directly or indirectly to each other in order to 35 
allow the flow of data needed for their operations. It is 
also noted that a module or processor includes but is not 
limited to a unit of code that performs a software opera- 
tion, and can be implemented for example as a subrou- 
tine unit of code, or as a software function unit of code, 40 
or as an object (as in an object-oriented paradigm), or 
as an applet, or in a computer script language, or as 
another type of computer code. 

[0070] Various embodiments of the present invention 
having been thus described in detail by way of example, 45 
it will be apparentto those skilled in the art that variations 
and modifications may be made without departing from 
the invention. The invention includes all such variations 
and modifications as fall within the scope of the appended 
claims. 50 
[0071] A portion of the disclosure of this patent docu- 
ment contains material which is subject to copyright pro- 
tection. The copyright owner has no objection to the fac- 
simile reproduction by any one of the patent document 
or patent disclosure, as it appears in the Patent and 55 
Trademark Office patent file or records, but otherwise 
reserves all copyrights whatsoever. 
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Claims 

1 . A method for transmitting a message from a server 
to a mobile communications device, a content of the 
message comprising at least one content portion de- 
limited within the message by a predefined identifier, 
the method comprising the steps of: 

transmitting a first segment of the message to 
the mobile communications device, the first seg- 
ment comprising at least a part of the at least 
one content portion; 

receiving a request from the mobile communi- 
cations device to send the remainder of the at 
least one content portion; 
scanning the message for the predefined iden- 
tifier to identify the remainder of the content por- 
tion delimited by said predefined indicator; and 
transmitting the remainder of the content portion 
to the mobile communications device. 

2. The method of claim 1 , further comprising the step 
of determining whether the message content is 
signed and/or encrypted. 

3. The method of claim 2, wherein if the message con- 
tent is encrypted or both signed and encrypted, the 
scanning step further comprises the steps of receiv- 
ing a decryption key from the mobile communica- 
tions device and decryptingthe message content pri- 
or to scanning the message for the predefined iden- 
tifier. 

4. The method of any one of claims 1 to 3, wherein at 
least one content portion of the message content 
comprises content displayable on the mobile com- 
munications device. 

5. The method of any one of claims 1 to 4, further com- 
prising the step of transmitting the entirety of the 
message to the mobile communications device upon 
receipt of an instruction from the mobile communi- 
cations device to transmit the entirety of the mes- 
sage, said step being executable at any time during 
the method. 

6. The method of claim 5 further comprising the steps, 
at the mobile communications device, of receiving 
the entirety of the message and verifying the mes- 
sage. 

7. A system for the transmission of a message receiv- 
able on a mobile communications device, the mes- 
sage comprising a message content portion display- 
able on the mobile communications device, the sys- 
tem comprising: 

means adapted to transmit a first segment of the 
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message to the mobile communications device, 
the first segment comprising at least a part of 
the message content portion displayable on the 
mobile communications device; 
means adapted to receive a request from the 5 
mobile communications device to send the re- 
mainder of the message content portion display- 
able on the mobile communications device; 
means adapted to scan the message for a pre- 
defined identifier to identify the remainder of the w 
message content portion displayable on the mo- 
bile communications device delimited by said 
predefined identifier; and 
means adapted to transmit the remainder of the 
message content portion displayable on the mo- 15 
bile communications device to the mobile com- 
munications device 

8. The system of claim 7, further comprising means 
adapted to determine whether the message content 20 
portion displayable on the mobile communications 
device is signed and/or encrypted. 

9. The system of claim 8, further comprising means 
adapted to receive a decryption key from the mobile 25 
communications device and decrypt the message. 

1 0. The system of any one of claims 7 to 9, further com- 
prising means adapted to transmit the entirety of the 
message to the mobile communications device. 30 

11. A computer program product for transmitting a mes- 
sage from a server to a mobile communications de- 
vice, a content of the message comprising at least 
one content portion delimited within the message by 35 
a predefined identifier, the computer program prod- 
uct comprsing a computer readable medium embod- 
ying program instructions to implement the method 

of any one of claims 1 to 6 in a computing device, 
apparatus or system. 40 

Amended claims in accordance with Rule 86(2) EPC. 

1. A method for transmitting a message from a server 45 
to a mobile communications device, a body of the 
message comprising at least one content portion de- 
limited within the message by a predefined identifier, 
the method comprising the steps of: 

50 

transmitting a first segment of the message to 
the mobile communications device, the first seg- 
ment comprising at least a part of the at least 
one content portion; 

receiving a request from the mobile communi- 55 
cations device to send the remainder of the at 
least one content portion; 
scanning the message for the predefined iden- 



tifierto identify the remainder of the content por- 
tion delimited by said predefined indicator; and 
transmitting the remainderof the content portion 
to the mobile communications device. 

2. The method of claim 1 in which the first segment 
is a chunk of data of predetermined size. 

3. The method of claim 1 or 2 in which the body con- 
tains only contentthatcan be displayed on the mobile 
communications device. 

4. The method of claim 1 , 2 or 3 further comprising 
the step of determining whether the message con- 
tent is signed and/or encrypted. 

5. The method of claim 4, wherein if the message 
content is encrypted or both signed and encrypted, 
the scanning step further comprises the steps of re- 
ceiving a decryption key from the mobile communi- 
cations device and decrypting the message content 
prior to scanning the message for the predefined 
identifier. 

6. The method of any one of claims 1 to 5, wherein 
at least one content portion of the message body 
comprises content displayable on the mobile com- 
munications device. 

7. The method of claim 6, wherein content display- 
able on the mobile communications device is plain- 
text content and the at least one content portion is 
in plaintext format. 

8. The method of claim 6, wherein content display- 
able on the mobile communications device compris- 
es Rich Text Format content and the at least one 
content portion is in Rich Text Format. 

9. The method of claim 6, wherein content display- 
able on the mobile communications device compris- 
es HTML content and the at least one content portion 
is in HTML format. 

10. The method of any one of claims 1 to 9, further 
comprising the step of transmitting the entirety of the 
message to the mobile communications device upon 
receipt of an instruction from the mobile communi- 
cations device to transmit the entirety of the mes- 
sage, said step being executable at any time during 
the method. 

11. The method of claim 10 further comprising the 
steps, at the mobile communications device, of re- 
ceiving the entirety of the message and verifying the 
message. 

1 2. The method of any one of the preceding claims, 
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wherein the message further comprises an attach- 
ment. 

13. A system for the transmission of a message re- 
ceivable on a mobile communications device (1 00), 5 
the message comprising a message content portion 
displayable on the mobile communications device, 
the system comprising: 

means (40) adapted to transmit a first segment 10 
of the message to the mobile communications 
device, the first segment comprising at least a 
part of the message content portion displayable 
on the mobile communications device; 
means (40) adapted to receive a request from 15 
the mobile communications device to send the 
remainder of the message content portion dis- 
playable on the mobile communications device; 
means (40) adapted to scan the message for a 
predefined identifier to identify the remainder of 20 
the message content portion displayable on the 
mobile communications device delimited by said 
predefined identifier; and 
means (40) adapted to transmit the remainder 
of the message content portion displayable on 25 
the mobile communications device to the mobile 
communications device. 

14. The system of claim 13, further comprising 
means adapted to determine whether the message 30 
content portion displayable on the mobile communi- 
cations device is signed and/or encrypted. 

15. The system of claim 14, further comprising 
means adapted to receive a decryption key from the 35 
mobile communications device and decryptthe mes- 
sage. 

1 6. The system of any one of claims 1 3 to 1 5, further 
comprising means adapted to transmit the entirety 40 
of the message to the mobile communications de- 
vice. 

18. The system of any one of claims 13to 16, wherein 

the message content portion displayable on the mo- 45 
bile communications device is in plaintext format. 

19. A computer program product for transmitting a 
message from a server to a mobile communications 
device, a content of the message comprising at least 50 
one content portion delimited within the message by 

a predefined identifier, the computer program prod- 
uct comprsing a computer readable medium embod- 
ying program instructions to implement the method 
of any one of claims 1 to 12 in a computing device, 55 
apparatus or system. 



13 



EP 1 806 683 A1 



E-Mail Sender 



40 



I r*i I 



[=□ 



25 20 



Message 
Server 



□ r 



Message Server System 




100 



Mobile 
Communication 
Device 



Wireless 
Gatew^ 1 



90 




FIG* 1 



14 



EP 1 806 683 A1 



30 



Host Location (example : Corporate Office) 



65 



Physical 
Cradle 
Device 




E-Mail Sender 



Mobile 
Device Y 



100 



Mobile Data 
Communication 
Device 



10 



Mobile Data 
Communication 
Device 




FIG. 2 



15 



EP 1 806 683 A1 




16 



EP 1 806 683 A1 



send AUTO MORE 
indicator to server 
395 



receive segment 
from server 
405 



scan segment 
for delimiter 
410 



NO 




YES 



YES 



signal server to stop 
sending segments 
415 



FIG. 4 



17 



EP 1 806 683 A1 



server receives 
message 
440 



server sends first 
segment 
445 




NO 



server parses 
message for 
delimiter 
455 




YES-*- 



parse message and 
remove digital 
certificates 
465 



NO 



send remainder of 
displayable content 
470 



FIG. 5 



18 



EP 1 806 683 A1 




European Patent 
Office 



EUROPEAN SEARCH REPORT 



Application Number 

EP 05 11 1535 



DOCUMENTS CONSIDERED TO BE RELEVANT 



Category 



Citation of document with indication, where appropriate, 
of relevant passages 



Relevant 
to claim 



CLASSIFICATION OF THE 
APPLICATION (IPC) 



X 



EP 1 580 953 A (RESEARCH IN MOTION 
LIMITED) 28 September 2005 (2005-09-28) 

* abstract * 

* paragraph [0034] - paragraph [0044] * 

* figures 2-6 * 



1-11 



INV. 

G06Q10/00 



W0 03/005636 A (TELEF0NAKTI EB0LAGET L M 
ERICSSON ; BARRIGA, LUIS; MAANGS, 
JAN-ERIK) 16 January 2003 (2003-01-16) 
abstract * 

page 2, line 14 - page 3, line 20 * 
page 16, line 21 - page 18, line 17 * 
claims 13-19 * 
figure 4 * 



1-11 



US 2005/163320 Al (BROWN MICHAEL S ET AL) 
28 July 2005 (2005-07-28) 

* abstract * 

* paragraph [0076] - paragraph [0081] * 

* paragraph [0127] - paragraph [0128] * 

* figures 2-12,15 * 



1-11 



TECHNICAL FIELDS 
SEARCHED (IPC) 



US 2002/007453 Al (NEMOVICHER C. KERRY) 

17 January 2002 (2002-01-17) 

* paragraph [0065] - paragraph [0082] * 



1-11 



G06Q 
H04L 



The present search report has been drawn up for all claims 



Place of search 



The Hague 



Dafe of completion of the search 

11 May 2Q06 



Examiner 



CTrstet, A 



CATEGORY OF CITED DOCUMENTS 

X : particularly relevant if taken alone 

Y : particularly relevant if combined with another 

document of the same category 
A : technological background 
O : non-written disclosure 
P : intermediate document 



T : theory or principle underlying the invention 
E : earlier patent document, but published on, or 

after the filing date 
D : document cited in the application 
L : document cited for other reasons 

& : member of the same patent family, corresponding 
document 



19 



EP 1 806 683 A1 



ANNEX TO THE EUROPEAN SEARCH REPORT 
ON EUROPEAN PATENT APPLICATION NO. 



EP 05 11 1535 



This annex lists the patent family members relating to the patent documents cited in the above-mentioned European search report. 
The members are as contained in the European Patent Office EDP file on 

The European Patent Office is in no way liable for these particulars which are merely given for the purpose of information. 

11-05-2006 



Patent document 
cited in search report 



Publication 
date 



Patent family 
member(s) 



Publication 
date 



EP 


1580953 


A 


28 


-09 


-2005 


CA 


2501837 


Al 


22-09-2005 














CN 


1674590 


A 


28-09-2005 














SG 


115855 


Al 


28-10-2005 


WO 


03005636 


A 


16 


-01 


-2003 


CN 


1522516 


A 


18-08-2004 














GB 


2396537 


A 


23-06-2004 














SE 


522647 


C2 


24-02-2004 














SE 


0102437 


A 


05-01-2003 














US 


2004249892 


Al 


09-12-2004 


US 


2005163320 


Al 


28 


-07 


-2005 


NONE 








us 


2002007453 


Al 


17 


-01 


-2002 


AU 


7491201 


A 


03-12-2001 














WO 


0191403 


A2 


29-11-2001 



U) 

s 

LL 

o 
o 

CL 



th For more details about this annex : see Official Journal of the European Patent Office, No. 1 2/82 



20 



EP 1 806 683 A1 



REFERENCES CITED IN THE DESCRIPTION 

This list of references cited by the applicant is for the reader's convenience only. It does not form part of the European 
patent document Even though great care has been taken in compiling the references, errors or omissions cannot be 
excluded and the EPO disclaims all liability in this regard. 

Patent documents cited in the description 
• US 621 9694 B [0022] 



21 



